iPhone users have been warned about a new bug called 'NoReboot' that can leave the device vulnerable to hackers. The iPhone bug is reportedly dangerous and can affect every iPhone model and every version of iOS. The bug can stop infected iPhones with its attacks. It is believed to be the hardest bug to find. Apple security teams are working on a fix which is reportedly tough to find.
The iPhone bug has been detected by mobile security specialists ZecOps. They have issued the warning in one of their blog posts. They mentioned that the iPhone bug alters a shutdown event, tricking the user into thinking that the phone has been powered off, but in fact, it’s still running. The bug hijacks the InCallService, SpringBoard and backboardd background processes that control the reboot process on iPhones.
https://blog.zecops.com/research/persistence-without-persistence-meet-the-ultimate-persistence-bug-noreboot/
The bug is presumed dangerous as it makes the device vulnerable to hackers - it becomes easier for them to target and access iPhones with “non-persistent” attacks. Though the report states that these bugs can be removed when the user shuts down or restarts their phone, it’s not as simple as it looks. The damage caused by the hackers can be increased when combined with the NoReboot code and the user cannot get rid of the hack easily. Since, a wide range of data is sent to attacker controlled servers, the compromised devices can still be monitored even after the malware is gone.
ZecOps has mentioned that Apple is unable to deal with the bug as the software itself cannot be patched. The only way to prevent the attack is if Apple built new hardware into its iPhones to show if the phone was really on or off. However, the potential
Read more on tech.hindustantimes.com